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EXAMINER'S AMENDMENT 

1 . An examiner's amendment to the record appears below. Should the changes 
and/or additions be unacceptable to applicant, an amendment may be filed as provided 
by 37 CFR 1.312. To ensure consideration of such an amendment, it MUST be 
submitted no later than the payment of the issue fee. 

Authorization for this examiner's amendment was given in a telephone interview 
with Thomas J. Frame on 4/24/07. 

2. The application has been amended as follows: 
In claim 1 , the paragraph 

"a packet gateway operable to retrieve a group profile from an authentication, 
authorization, and accounting (AAA) server in response to receiving a request from a 
first end user and to locally cache the group profile, wherein the packet gateway 
determines if the first end user is authenticatied and if the first end user is 
unauthenticated, then the packet gateway searches a local cache for a profile with 
network digits of the first end user's MSID, whereby if the profile is not in the local cache 
or has expired, then the packet gateway purges the expired profile or requests the 
profile from the AAA server, caches the profile, and marks an expiry time that is 
provided within the profile, once the profile is in the cache, subsequent users that 
belong to a same group can be authorized with a realm and with authorization attributes 
and without involving the AAA server, the packet gateway being operable to provide a 
service to the first end user based on information included within the group profile and 
associated with the first end user, wherein the packet gateway is further operable to 
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receive a request from a second end user and to determine if the second end user is 
included within the group profile such that in cases where the second end user is 
included in the group profile the packet gateway can locally cache the group profile in 
order to provide a service to the second end user without having to communicate with 
the AAA server." 
has been changed to 

-a packet gateway operable to retrieve a group profile from an authentication, 
authorization, and accounting (AAA) server in response to receiving a request from a 
first end user and to locally cache the group profile, wherein the packet gateway 
determines if the first end user is authenticated and if the first end user is 
unauthenticated, then the packet gateway searches a local cache for the group profile 
associated with network digits of the first end user's mobile stafion identifier (MSID), 
whereby if the group profile is not in the local cache or has expired, then the packet 
gateway purges the expired group profile and requests the group profile from the AAA 
server, caches the group profile, and marks an expiry time that is provided within the 
group profile, once the group profile is in the cache, subsequent users that belong to a 
same group can be authorized with a realm and with authorization attributes and without 
involving the AAA server, the packet gateway being operable to provide a service to the 
first end user based on information included within the group profile and associated with 
the first end user, wherein the packet gateway is further operable to receive a request 
from a second end user and to determine if the second end user is included within the 
group profile such that in cases where the second end user is included in the group 
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profile the packet gateway can locally cache the group profile in order to provide a 
service to the second end user without having to communicate with the AAA server.- 

In claim 8, the paragraph 

"providing a service to the first end user based on information included within the 
group profile and associated with the first end user, wherein the packet gateway 
determines if the first end user is authenticated and if the first end user is 
unauthenticated, then the packet gateway searches a local cache for a profile with 
network digits of the first end user's MSID, whereby if the profile is not in the local cache 
or has expired, then the packet gateway purges the expired profile or requests the 
profile from the AAA server, caches the profile, and marks an expiry time that is 
provided within the profile, once the profile is in the cache, subsequent users that 
belong to a same group can be authorized with a realm and with authorization attributes 
and without involving the AAA server;" 
has been changed to 

-providing a service to the first end user based on information included within the 
group profile and associated with the first end user, wherein the packet gateway 
determines if the first end user is authenticated and if the first end user is 
unauthenticated, then the packet gateway searches a local cache for the group profile 
associated with network digits of the first end user's mobile station identifier (MSID), 
whereby if the group profile is not in the local cache or has expired, then the packet 
gateway purges the expired group profile or requests the group profile from the AAA 
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server, caches the group profile, and marks an expiry time that is provided within the 
group profile, once the group profile is in the cache, subsequent users that belong to a 
same group can be authorized with a realm and with authorization attributes and without 
involving the AAA server;- 

In claim 13, the paragraph 

"means for providing a service to the first end. user based on information included 
within the group profile and associated with the first end user, wherein the packet 
gateway determines if the first end user is authenticated and if the first end user is 
unauthenticated, then the packet gateway searches a local cache for a profile with 
network digits of the first end user's MSID, whereby if the profile is not in the local cache 
or has expired, then the packet gateway purges the expired profile or requests the 
profile from the AAA server, caches the profile, and marks an expiry time that is 
provided within the profile, once the profile is in the cache, subsequent users that 
belong to a same group can be authorized with a realm and with authorization attributes 
and without involving the AAA server;" 
has been changed to 

-means for providing a service to the first end user based on information 
included within the group profile and associated with the first end user, wherein the 
packet gateway determines if the first end user is authenticated and if the first end user 
is unauthenticated, then the packet gateway searches a local cache for the group profile 
associated with network digits of the first end user's mobile station identifier (MSID), 
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whereby If the group profile is not in the local cache or has expired/then the packet 
gateway purges the expired group profile or requests the group profile from the AAA 
server, caches the group profile, and marks an expiry time that is provided within the 
group profile, once the group profile is in the cache, subsequent users that belong to a 
same group can be authorized with a realm and with authorization attributes and without 
involving the AAA server;- 

In claim 18, the paragraph 

"provide a service to the first end user based on information included within the 
group profile and associated with the first end user, wherein the packet gateway 
determines if the first end user is authenticated and if the first end user is 
unauthenticated, then the packet gateway searches a local cache for a profile with 
network digits of the first end user's MSID, whereby if the profile is not In the local cache 
or has expired, then the packet gateway purges the expired profile or requests the 
profile from the AAA server, caches the profile, and marks an expiry time that is 
provided within the profile, once the profile Is in the cache, subsequent users that 
belong to a same group can be authorized with a realm and with authorization attributes 
and without involving the AAA server;" 
has been changed to 

-provide a service to the first end user based on information included within the 
group profile and associated with the first end user, wherein the packet gateway 
determines if the first end user is authenticated and if the first end user is 
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unauthenticated, then the packet gateway searches a local cache for the group profile 
associated with network digits of the first end user's mobile station identifier (MSID), 
whereby if the group profile is not in the local cache or has expired, then the packet 
gateway purges the expired group profile or requests the group profile from the AAA 
server, caches the group profile, and marks an expiry time that is provided within the 
group profile, once the group profile is in the cache, subsequent users that belong to a 
same group can be authorized with a realm and with authorization attributes and without 
involving the AAA server;- 

Allowable Subject Matter 

3. This office action is in response to the communication dated 2/16/2007 with the 
amendments to claims 1, 8, 13 and 18. 

4. Claims 1-22 are allowed. 

5. The following is an examiner's statement of reasons for allowance: 
The present invention is directed to a system and method for optimizing 

authentication in a network environment. Each independent claim (claims 1, 8, 13 and 
18) identifies the unique distinct feature of once the group profile is in the cache, 
subsequent users that belong to a same group can be authorized with a realm and with 
authorization attributes and without involving the AAA server. This ability of caching a 
group profile locally offers the ability to quickly identify an end user without having to 
traverse a portion of the network in order to query the AAA server each time a new end 
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user makes contact with the packet gateway (see specification: page 4, lines 2-6). The 
closest prior arts of record fail to anticipate or render the above limitations obvious. 

Any comments considered necessary by applicant must be submitted no later 
than the payment of the issue fee and, to avoid processing delays, should preferably 
accompany the issue fee. Such submissions should be clearly labeled "Comments on 
Statement of Reasons for Allowance." 

6. Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Minh Dieu Nguyen whose telephone number is 571-272- 
3873. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Emmanuel Moise can be reached on 571-272-3865. The fax phone number 
for the organization where this application or proceeding is assigned is (571) 273-8300. 

Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for published 
applications may be obtained from either Private PAIR or Public PAIR. Status 
information for unpublished applications is available through Private PAIR only. For 
more information about the PAIR system, see http://pair-direct.uspto.aov . Should you 
have questions on access to the Private PAIR system, contact the Electronic Business 
Center (BBC) at 866-217-9197 (toll-free). 
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